/* * Copyright (C) 2008-2017, Juick * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU Affero General Public License as * published by the Free Software Foundation, either version 3 of the * License, or (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU Affero General Public License for more details. * * You should have received a copy of the GNU Affero General Public License * along with this program. If not, see . */ package com.juick.api.controllers; import com.juick.User; import com.juick.server.util.HttpForbiddenException; import com.juick.server.util.HttpNotFoundException; import com.juick.service.UserService; import com.juick.server.util.UserUtils; import com.juick.server.util.WebUtils; import org.springframework.http.MediaType; import org.springframework.web.bind.annotation.*; import javax.inject.Inject; import java.util.ArrayList; import java.util.Collections; import java.util.List; /** * @author ugnich */ @RestController public class Users { @Inject private UserService userService; @RequestMapping(value = "/auth", method = RequestMethod.GET, produces = MediaType.APPLICATION_JSON_UTF8_VALUE) public String getAuthToken() { return userService.getHashByUID(UserUtils.getCurrentUser().getUid()); } @RequestMapping(value = "/users", method = RequestMethod.GET, produces = MediaType.APPLICATION_JSON_UTF8_VALUE) public List doGetUsers( @RequestParam(value = "uname", required = false) List unames, @RequestParam(value = "jid", required = false) List jids) { List users = new ArrayList<>(); if (unames != null) { unames.removeIf(WebUtils::isNotUserName); if (!unames.isEmpty() && unames.size() < 20) users.addAll(userService.getUsersByName(unames)); } if (jids != null) { jids.removeIf(WebUtils::isNotJid); if (!jids.isEmpty() && jids.size() < 20) users.addAll(userService.getUsersByJID(jids)); } if (!users.isEmpty()) return users; if (!UserUtils.getCurrentUser().isAnonymous()) { return Collections.singletonList(UserUtils.getCurrentUser()); } throw new HttpNotFoundException(); } @RequestMapping(value = "/users/read", method = RequestMethod.GET, produces = MediaType.APPLICATION_JSON_UTF8_VALUE) public List doGetUserRead( @RequestParam String uname) { User visitor = UserUtils.getCurrentUser(); int vuid = visitor.getUid(); if (vuid == 0) { throw new HttpForbiddenException(); } int uid = 0; if (uname == null) { uid = vuid; } else { if (WebUtils.isUserName(uname)) { com.juick.User u = userService.getUserByName(uname); if (u != null && u.getUid() > 0) { uid = u.getUid(); } } } if (uid > 0) { List uids = userService.getUserRead(uid); if (uids.size() > 0) { List users = userService.getUsersByID(uids); if (users.size() > 0) { return users; } } } throw new HttpNotFoundException(); } @RequestMapping(value = "/users/readers", method = RequestMethod.GET, produces = MediaType.APPLICATION_JSON_UTF8_VALUE) public List doGetUserReaders( @RequestParam String uname) { User visitor = UserUtils.getCurrentUser(); int vuid = visitor.getUid(); if (vuid == 0) { throw new HttpForbiddenException(); } int uid = 0; if (uname == null) { uid = vuid; } else { if (WebUtils.isUserName(uname)) { com.juick.User u = userService.getUserByName(uname); if (u != null && u.getUid() > 0) { uid = u.getUid(); } } } if (uid > 0) { return userService.getUserReaders(uid); } throw new HttpNotFoundException(); } }